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APPELLANTS' BRIEF 



This brief is in furtherance of the NO'llCE OF APPHAL, communicated via 
facsimile on February 21 , 2006. 

Any fees required under §41 .20, and any required petition for extension of time 
for filing this brief and foes therefor, are dealt with in the accompanying TRANSMlTl'AL Of 
APPEAL BRIEF. 

Tliis brief contains these items under the following headings, and in the order set 
forth below (37 C.F.R. § 41 .37(c)): 

I REAL PARTY IN INTEREST 

II RELATED APPEALS AND INTERFERENCES 
m STATUS OF CLAIMS 

IV STAIUS OF AMENDMENTS 
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V SUMMARY OF CLAIMED SUBJECT MATTER 

VI GROUNDS OF REJECTION TO BE REVIEWED ON APPEAL 
VU ARGUMENT 

A. Rejections under 35 U.S.C. 102 

B. Rejections under 35 U.S.C. 103 
VITl CLAIMS APPENDIX 

IX EVIDENCE APPENDDC (not applicable) 

X RELATED PROCEEDINGS APPENDIX (not applicable) 



The real party in interest in this appeal is Motorola, Inc., a Delaware corporation. 

II. RELATED APPEALS AND INTERFERENCES 

With respect to other appeals or interferences that will directly affect, or be 



directly affected by, or have a bearing on the Board's decision in this appeal, tliere are no such 
appeals or interferences. 

Tll. STATUS OF CLAIMS 
A. Status of all claims in the proceeding 



L REAL PARTY IN INTEREST 



Clams rejected: 



1-53 



2. 



Claims allowed: 



none 



3. 



Claims withdrawn from consideration but not canceled: none 



4. 



Claims objected to: none 



Claims canceled: 



none 



B. Identification of claims being appealed 



The claims on appeal are: 



1-53 
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IV, STATUS OF ANY AMENDMENTS AFTER FINAL 

No amendments have been filed after final, 

V. SUMMARY OF INVENTION 

A fin?t aspect of the present invention, whicli is being appealed, pertains to a 
communication device (202), that is operable in a domain-based digital rights management 
environment (200; Fig, 2; page 8, lines 4-6), The digital rights management environment (200) 
includes a processing element (802), a receiver (808), which is coupled to and controlled by the 
processing element (802), and is operable to receive incoming messages to the communication 
device (202), and a transmitter (806), which is coupled to and controlled by the processing clement 
(802), and is operable to transmit output messages of the communication device (202). The digital 
rights management environment (200) additionally includes a digital rights management module 
(804) coupled to the processing element (802) that controls operation of the communication device 
(202) within the domain-based digital rights management environment (200), wherein the digital 
riglits management module (804) of the communication device (202) in combination with a domain 
authority (204) of the domain-based digital rights management environment (200) is operable to 
selectively add tlie communication device (202) to a domain (216) having one or more 
communication devices that share a cryptogiaphic key (page 7, line 31 - page 8, line 2), which is 
associated widi the domain (216), and thus permit the commimication device (202) to selectively 
receive and decrypt digital content (1 12) based upon membership in the domain (216) using the 
shaied cryptographic key (page 7, line 3 1 — page 8, Ime 2). 

A further aspect of the present invention, which is being appealed, pertauis to a 
method of operation of a communication device (202) of a domain (216) having one or more 
communication devices that share a cryptographic key (page 7, line 31 - page 8, line 2), which is 
associated with the domain and is used to decrypt select digital content, in a domain-based digital 
rights management environment (200; Fig. 2; page 8, lines 4-6), The method includes the 
communication device (202) communicating (page 14, lines 14-16) to a domain authority (204) a 
request to register the communication device into a domain (2 1 6), in response to a user request. The 
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method further includes the communication device receiving (page 14, lines 19-20) over a 
communications channel a CTyptograpbic key(puge 7, b'ne 31 - page 8, line 2) of the domain (216) 
from the domain authority (204) that links the communication device (202) to the domain (216), if 
the communication device (202) is detemiined to have access to one or more valid cryptographic 
elements (page 8, line 28 - page 9» line 2), 

A still further aspect of the present invention, which is being appealed, p>ertains to a 
method for registering devices in a domain (216) having one or more communication devices that 
share a cryptographic key (page 7, line 31 - page 8, line 2), which is associated with the domain 
(216) and is used to decrypt select digital content, in a domain-based digital rights management 
environment (page 8, lines 4-6; FIG. 2). The method includes a domain authority (204) receiving a 
request (page 14, lines 14-16) to add a communication device (202) to the domain (216). The 
domain authority (204) then determines whether the communication device (202) is legitimate by 
verifying that the communication device (202) h<is access to one or more valid cryptographic 
elements (page 8, line 28 - page 9, line 2). If the communication device (202) is determined to be 
valid, the domain authority (204) transmits (page 14, lines 19-20) over a commxmications channel to 
the communication device a ciyptographic key (page 7, line 3 1 -page 8, line 2) of the domain (216) 
operable to link the communication device (202) to the domain (216). 

Yet a still further aspect of the present in ventitm, which is being appealed, pertains to 
a domain-based digital rights management system (FIG. 4), The domain-based digital rights 
management system (FIG. 4) includes a communication device (202) linked via a first 
communications link (FIG. 4) to a domain-based digital rights management environment (200; 210, 
404» 406). The communication device (202) includes a processing element (802); a receiver (808), 
coupled to and controlled by the processing element (802), opemble to receive incoming message?? to 
the communication device (202); a transmitter (806), coupled to and controlled by the processing 
clement (802), operable to transmit output messages of the communication device (202); and a 
digital rights management module (804) coupled to the processing element that controls operation of 
the conmiunication device (202) within the domain-based digital rights management system (FIG. 4). 
The domain-based digital rigjits management system (FIG, 4) further includes a domain authority 
(204) coupled to the communication device (202) via a second communications link (FIG. 4), 
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wherein the digital riglits management module (804) of the communication device (202) in 
combination witli the doniain authority (204) are operable lo selectively add the communication 
device (202) to a domain (216) having one or more communication devices that share a 
cryptographic key (page 7j line 3 1 — page 8, line 2), which is associated with the domain (2 1 6), and 
thus permit the communication device (202) to selectively receive and decrypt digital content bailed 
upon membership in the domain (2 1 6) using the shared cryptograpliic key (page 7, line 3 1 — page 8, 
line 2). 

Lastly, the present invention, wliich is being appealed, pertains to a metliod of 
limiting access to digital content in a domain-based digital rights management environment (FIG, 
2; page 8, lines 4-6), The method includes a first communication device (202), of a domain 
(21 6) having one or more communication devices (202) that share a cryptographic key (page 7, 
line 3 1 - page 8, line 2) of the domain (21 6), requesting digital content. The method further 
includes verifying authenticity of the domain (216), in response to the request from the first 
communication device (page 12, lines 8-9), and upon verifying the authenticity of the domain 
(216), making the requested digital content accessible to the first communication device (202) by 
binding an encrypted fonn of the requested digital content to the cryptographic key (page 7, line 
31 - page 8, line 2) of the domain (216) to which the first commimication device (202) is 
registered (page 12, lines 1 1-13). 

VI. GROUNDS OF REJECTION TO BE REVIEWED ON APPEAL 

1. Whether claims 1-13, 15-32, 34-36 and 38-53 have been improperly 
rejected under 35 U.S,C. 1 02(e) as being anticipated by Sweet ct al. (US Patent Application 
Publication No, 2002/0031230), 

2, Whether claim 1 4, 33 and 37 has been improperly rejected under 35 
U.S.C. 103(a) as being unpatentable over Sweet et al. (US Patent Application Publication No. 
2002/0031230), in view of Tokuc et al. (US Patent Application Publication No. 2002/0002413), 
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VII. ARGUMENTS 

A. Rejections under 35 V.S.C, 102 

A claim is anticipated only if each and every element as set forth in the claim is fonnd, 
either expressly or inherently described, in u single prior art reference, Verdeaaal Bros, v. Union 
Oil Co. oFCalifQmia> 814 F.2d 628. 63 L 2 USP02d 1051, 1053 (Fed. Cir, 1987). The identical 
invention must be shown in as complete detail as is contained in the . . . claim. Richardson v. 
Suzuki Motor Co. , 868 F.2d 1226, 1236, 9 USPQ2d 1913, 1920 (Fed- Cir. 1989). 

J_; Whether claims 1-13, 15-32, 34-36 and 38-53 have been improperly 

rejected under 35 U.S.C. 102fe) as being anticipated bv Sweet et al. fUS Patent Application 
Fubhcation No> 2002/0031 230). 

In attempting to reject the claims, the Examiner ha.s alleged that Sweet et al., ^230, makes 
known each of the features of the claims. However contrary to the Examiner's assertions. Sweet 
et al., '230, fails to make known each and every feature of the claims. It is not enough to show 
that some or all of the elements (or similarly named elements) arc present in a reference, but the 
elements need to be used and arranged in a manner, which is contextually consistent with which 
the elements are used in the claims. Here, the Examiner has focused on vague disconnected 
statements, and has attempted to impute meaning, which is simply not supported by the actual 
teacliing when considered in context, and/or to apply the teaching to the claim without regard as 
to the claimed context. Still further, the Examiner has failed to establish that any of the relied 
upon teachings from the reference are entitled to a date, which would establish the same as a 
prior teaching. Tt is noted that the reference relics upon the provisional filing date in order to 
predate the present application"*s priority claim, but that not all c)f the relied upon teachings can 
be shown to be fully supported by a sufficiently early US filing from which tlic reference claims 
priority. 

More specifically, the teachings of Sweet et al., '230, continue to be misapplied to the 
above noted claims h\ attempting to suggest that the same arc anticipated, as presently pending. 
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While the present application generally provides for a cryptographic key, which is shared by the 
one or more communication devices of a domain, which enables the digital content to be 
received and decrypted by the communication devices of the domain. Sweet at al., '230, docs not 
similarly provide for such a ciyptographic key, which is shared by the entities, which could be 
characterized as including one or more conrununication devices, or which form a domain for 
purposes of accessing domain authorized content Alternatively, Sweet et al., '230, includes a 
working key, which is generally unique for each data object including information of interest (see 
pg. I, par. [001 1]). Sweet et al., *230, in addition to including a working key, farther includes 
credential keys, which roay limit access to portions of a data object (see pg. 1, pai*. [0014J), 
dependent upon the set of credentials in a particular user's member profile, that is generally 
unique for each user (see pg. 3, par. [0035]). 

To the extent that Sweet et a!., *230, discusses dmTiain level access, the access is 
generally associated with access to an encrypted header file, which is associated with an 
encrypted data object, but is not the same as the encrypted data object (see pg, 9, par. [0132]). 
The cited reference then provides that read and write access to the encrypted data object are then 
preferably accomplished through the use of pseudo-random value encryption keys, which are 
based upon credential keys (see pg. 9^ par. [01 33]), which as noted above are further based upon 
the set of credentials contained in each member profile, which is unique to each user. 

At best, the encrypted data object, identified in the cited reference, and not the associated 
header file, is more closely akin to content. Consequently a domain level of access to a header 
file is not the same as providing a shared domain-level cryptographic key, which enables the 
receipt and decryption of digital content, based upon membership in the domain, as provided by 
the claims of the present application. "Content*" is defined by the American Heritage Dictionary 
of the English Language, Fourth Edition, published by the Houghton Miftlin Company (2000), as 
"the substantive or meaningful part". Alternatively, "header"' is defined by the Free On-line 
Dictionary of Computing, Denis Howe, (1993-2004), as "the portion of a packet, preceding the 
actual data" and '*the part of an electronic mail message or news article that precedes the body of 
a message". Hence, one skilled in the art would not recognize header information as being 
equivalent to content, 
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Even at a more basic level, the use of the term domain in the cited reference relates to a 
group of members identified tlirough Individual member accounts, v^hich is silent as to "having 
one or more communication devieeii", Oii provided by the claims of the preisent application. 
While the present application describes members as having individual member accounts and 
corresponding member tokens, no such designation is described relative to one or more various 
communication devices. In fact, the present application envisions that a particular user may have 
more than one communication device (see pg. 8, lines 2-3), which in tum can be enrolled in the 
same domain. The cited reference is silent as to any relationship of one or more "communication 
devices'* relative to a domain. As noted above, it is the association with a member account 
which establishes access through (me or more assigned credentials^ which is different than being 
based upon association with a domain including one or more communication devices. 

The above noted-inconsistencies between the cited reference and the present application 
make generally inapplicable the teaching of the reference in attempting to make known or 
obvious any of the claims of the present application. Consequently, Sweet et al., ''230, fails to 
support an alleged anticipation of each of the independent claims, as well as each of the 
corresponding dependent claims, which depend therefrom. 

In responding to applicants' previous arguments, the Examiner has mischaracleri'/ed the 
Applicants position and correspondingly failed to address the specific deficiencies noted by the 
applicants, namely the failure to provide for a shared cryptographic key used by a domain having 
one or more communication devices. Instead the Examiner focuses on "encrypted eontenf in 
isolation without reference to a claimed context, which is relevant to the claims of the present 
application, where the cnciypted content is encrypted and decrypted using a domain based key. 
Tlie Examiner further focuses on the possibility that a member may have multiple devices, but 
then fails to show how tlie multiple devices form a domain, which has a corresponding shared 
cryptographic key, based upon the domain of devices. As noted above and supported by the 
portion of the reference specifically cited by the Examiner, paragraph [0172], the common 
content is accessible through appropriate credentials associated with a member account, <ind not a 
particular domain having one or more devices. It is the credentials associated with the user that 
allows the user to access the content using client application software for his player devices. The 
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requirement ot credential keys in the cited reference seems to preclude a shared cryptographic 
key, which is associated with the domain of one or more communication devices. 

Furthermore the focus on the portion of the reference, paragraph [0146], which identifies 
examples of a member's client system, as including personal computer, cellular telephone or 
wireless personal digital assistant, similarly fails to support a teaching of a domain having one or 
more conomunication deviceSj in so far, as a more complete reading of the paragraph further 
provides that the member's credentials would never need to be transmitted to member systems, 
which further suggests that the concept of domain an taught by the reference! is organized, hased 
upon being a particular member (i.e. a particular user) and not the device. Such that a domain in 
the context of the reference fails to correspond to a claimed context, which associates the claimed 
domain and the one or more devices that share the cryptographic key. 

Consequently, contrary to the assertions of the Examiner, Sweet ct al., '230, fails to make 
known each and every feature of the claims in a manner which is contextually consistent, 
regardless as to whether the Examiner can properly establish that each of the teachings being 
relied upon can be shown to be entitled to a sufficiently early US tiling date to constitute a prior 
teaching. 

B. Rejections under 35 U.S.C. 103 

The Examiner has rejected claims )4, 33 and 37 under 35 U.S.C 103(a) as being 
unpatentable over Sweet et ai., *230, in view of Tokue et aL, '41 3. However^ in each instance, 
the rejection has been misapplied. The specific reasoning outlining the misapplication of the 
rejections are noted below. 

The Federal Circuit has repeatedly emphasized that, with resp>ect to obviousness, the 
standard for patentability is the statutory standard. The inquiry is whether the claimed subject 
matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art. Tn this regard, sec for example. Monarch Knitting Machinery 
Cort>. V. Saulzcr Maurat GMBH, 139 F.3d 877, 881, 45 USPQ2d 1977, 1981 (Fed. Cir. 1998). 
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For purposes of formulating an obviousness type rejection, the Patent and Trademark 
Office (PTO) has the initial burden of presenting a prima facie case. In re Mavne, 104 F.3d 
1339, 1341, 41 USPQ2d 1451 (Fed. Cir. 1997). In order to establish a prima facie case of 
obviousness, it must be shown that the prior art reference, or references when combined, teach or 
suggest all of tiie claim limitations, Pro-Mold and Tool Co, v. Great Lakes Plastics Inc.. 75 F.3d 
1568. 37 USPQ2d 1626, 162.9 (Fed. Cin 1996), TnreRovka. 490 F.2d 981, 180USPQ 580, 583 
(CCPA 1974). Furthermore^ the showing of a suggestion, teaching, or motivation to combine 
prior teachings "must be clear and particular." In re l>embiczak > 175 F,3d 994, 50 USPQ2d 1614 
(Fed. Cir. 1999). These requirements are consistent with the Patent and Trademaik Office's own 
examination guidelines governing the formation of obvious type rejections, see MPEP §2142* 

2, Whether claim 14, 33 and 37 has been improperly rejected under 35 

U.S.C. 103fa) as being unpatentable over Sweet ct al. (US Patent Application Publication No. 
2002/003 1230^. in view of Tokuc et al. (US Patent Application Publication No. 2002/0002413). 

Despite the Examincr^s assertions to the contrary, for purposes of serving as a 
basis of a prior teaching, a foreign priority date is simply not relevant. Consequently, any 
teaching associated with Tokue et aK, '413, cannot be cstahlished as constituting a prior teaching, 
and thcrctbrc any reliance on the pait of the Examiner of the reference in support of a rejection is 
entirely inapprx)priaLe. Please note, the US filing date of the reference, Tokuc ct al., '413, is June 
27, 200 1 , which is aAer the priority date (April 1 8, 200.1 ) of the present application. Therefore, 
the examiner has failed to properly allege a corresponding rejection, which is fully supported by a 
properly relied upon reference, which could be said to constitute a prior teaching that is relevant 
to the prosecution of the present application. 

Consequently, any feature of the claims that the reference is relied upon for purposes of 
supporting an assertion that the same is known or obviou.s, can not he said to he properly 
supported, so as to be relevant to the present application. Consequently the corresponding 
rejection should be reversed. 
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In view of the above analysis, the applicants would assert, that the Examiner has failed to 
establish that any of the cited references either separately or in eombination make known or 
obvious any of the presently pending claims. The applicants would respectfully request that the 
Examiner's decision to finally reject the presently pending claims be overturned, and that the 
claims be permitted to proceed to allowance. 



Motorola, Inc. 
Mobile Devices 

Intellectual Property Department 
600 North US Highway 45, AS437 
LibertyviUe, TL 60048 



Respectfully submitted, 



LaAvrence J. Chapa 
Reg. No. 39,135 
Phone No.: (847) 523-0340 
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VUl. CLAIMS APPENDIX 

The following is the text of the claims involved in this appeal: 

1. A communication device operable in a domain-based digital rights management 
environment, comprising: 

a processing element; 

a receiver, coupled to and controlled by the processing clement, operable to receive incoming 
messages to the coimnuiiication device; 

a transmitter, coupled to and controlled by tlic processing clement, operable to transmit 
output messages of the coromunication device; and 

a digital rights management module coupled to the processing clement diat controls operation 
of the communication device within tlie domain-based digital rights management environment; 

wherein the digital rights management module of the communication device in combination 
with a domain authority of the domain-based digital rights management environment is operable to 
selectively add the communication device to a domain having one or more commnnication devices 
that share a cryptographic key, which \h associated with the domain^ and thus pemiit the 
conmiunication device to selectively receive antl decrypt digital content based upon membership ijy 
the domain using the shared ciyptographic key. 

2. The communication device of claim 1, wherein the transmitter is a limited range 
transmitter having a limited conununication range and operable to transit the digital content to a 
trusted communication device within the limited communication range. 
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3. The oominuni cation device of claim 1, wherein in response to receiving a user 
request^ the digital rights management module causes the transmitter of the comiriunication device to 
transmit to a domain authority a request to register the conununi cation device into the domain; and 

wherein if the communication device is detemiined to have access to one or more valid 
cryptographic elements, the digital rights management module causes the receiver of the 
communication device to receive over a communications channel the cryptographic key of the 
domain from the domain authority to link the communication device to the domain. 

4. The communication device of claim 3, wherein the digital rights management module 
in combination with the domain authority removes the cx>mmunT cation device from the domain, 
comprising: 

in response to the request of the user of the domain to remove the communication 
device, tlie digital rights management module of the communication device causes the transmitter to 
transmit a request that the communication device be removed from the domain; 

in response to the request that the conununication device be removed from the 
domain, the communication device receives from the domain authority via the secure 
communications channel a command to remove the cryptographic key of the dt)main from the 
communication device; and 

upon receiving the command from the domain authority, the digital rights 
management module of the communication device removes the cryptographic key of the domain. 
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5. The coininuiiication device of claim 1, wherein in response to the digital rights 
raancigeTnent module of the coTninunication device causing the transmitter to transmit a request for 
digital content, at least one of the digital rights management module of the communication device 
and the domain authority verifies authenticity of die domain; and 

wherein upon verilication of the authenticity of the domain, the receiver of the 
communication device receives an encrypted form of the requested digital content that is bound to 
the cryptographic key of the domain in which the communication device is registered. 

6. The communication device of claim 1 , wherein the digital riglits management module 
of the communication device enforces usage rules associated with the requested digital content and 
received by the receiver in a content package containing the requested digital content. 

7. Tlic communication device of claim 6, wherein the content package comprises a 
binary representation rights table that contains the usage rules. 

8. The communication device of claim 7, wherein the binary representation rights tabic 
ct)mprises a plurality of sections having predefined tokens. 

9. The communication device of claim 1 , wherein the digital rights management module, 
in response to the transmitter of the communication device receiving a request from a second 
communication device of the domain requesting the digital content, causes the transmitter to transmit 
the requested digital content from a storage clement to the second communication device, 
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1 0. The communication device of claim 1 , whereiii in response to a request of the user of 
the communication device, the digital rights management module causes the transmitter to tnmsmit a 
request for digital content that is not available in the domain; and 

wherein after authenticity of the domain has been verified, the receiver receives an enctypted 
form of the requested digital content that is bound to the cryptographic key of the domain to which 
the communication device is registered. 

1 1 . 1 he communication device of claim 1 0, wherein tlic encrypted form of the requested 
digital content is ct)nlained in a content package. 

12. The communication device of claim 11, wherein the content package further 
comprises a binary representation rights table that contains the usage rules t)f the requested digital 
content. 

1 3. The communication device of claim 12, wherein the binary representation rights table 
comprises a plurahly of sections having predefined tokens. 

14. The conununication device of claim 10, wherein the digital rights management 
module of the communication device stores the encrypted digital content in an open-access storage 
element, 
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15. The communication device of claim 10, wherein the digital riglits management 
module of the communicatioTi device enforces usage rules* associated with the requested digital 
conlent and received by tlic receiver in a content package containing the requested digital content 

16. The communicarion device of claim 15, wherein the content package comprises a 
binary representation rights table that contains the usage rules. 

17. The communication device of claim 16, wherein the binary representation rights tabic 
comprises a pJuraHty of sections having predefined tokens. 

1 8. The communication device of claim 1 , wherein in response to the receiver receiving a 
request from a second communication device of the one or more comn:xunication devices of the 
domain for the digital content and the digital rights management module verifying the authenticity of 
the second communication device, the digital rights management module causing the transmitter to 
transmit the requested digitfil content from a storage element of the communication device to the 
second communication device. 

19. The communication device of claim I , wherein the digital rights management 
module causes digital legacy content received from a source external to the domain to be stored 
in a storage clement of the communication device; and 

wherein in response to a request from a second communication device of the domain, the 
digital rights management module causes the transmitter to transmit the digital legacy content from 
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the storagt^eltynnent to the second communication device. 

20. A method of operation of a communication device of a domain having one or more 
communication devices that share a cryptographic key, which is associated with the domain and is 
used to decrypt select digital content, in a domain-based digital riglits management environment, 
comprising; 

in response to a user request, the communication device communicating to a domain 
authority a request to register the communication device into a domain; and 

if tlie communication device is determined to have access to one or more valid cryptogr^hie 
elements, Ihe communication device receiving over a communications channel a cryptographic key 
of the domain from the domain authority that links the c^nnniunication device to the domain. 

21 . The method of claim 20y further comprising; 

the communication device, of a domain having one or more communication devices that 
share a cryptographic key of the domain, requesting digital content; 

in response to the communication device requesting digital content, at least one of the 
communication device and the domain authority verifying authenticity of the domain; and 

upon verification of the authenticity of the domain, the communication device receiving an 
encrypted form of the requested digital content that is botind to the cryptographic key of the domain 
to which the communication device is registered. 

22. The method of claim 21, further comprising the communication device enforcing 
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usage rules associated with the requested digital content and received in a content package 
containing the requested digital content, 

23. (previously presented) Tlic mctliod of claim 22, wherein the content package comprises a 
binary representation rights table that contains the usage rules. 

24, The method of claim 23, wherein the binary representation rights tabic ct^mprises a 
plurality of sections having predefined tokens. 

25. The method of claim 2 1 , farther comprising: 

a second communication device of the one or more communication devices of the domain 
requesting the digital content; and 

transferring the requested digital content from a storage element to the second 
communication device. 

26, The method of claim 20, wherein removing the communication device from the 
domain comprises: 

in response to the request of the user of the domain to remove the comroumcation device, the 
communication device transmitting a request that the communication device be removed from the 
domain; and 

in response to the request that the communication device be removed from the domain, the 
communication device receiving from the domain authority via the secure conmiunications channel a 
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command to remove the cryptographic key of the domain from the communication device, 

27. The method of claim 26, further comprising: 

upon receiving the command from tlic domain authority, the communication device removing 
the cryptographic key of the domain. 

28. The method of claim 20, wherein prior to the communication device communicating 
to a domain authority the request to register the communication device into the domain, further 
comprising the communication device: 

communicating to the domain authority a request to establish the domain, said request having 
a domain name and a domain password; 

communicating to the domain authority via a communications channel a unique identifier of 
the conununication device; 

downloading the cryptographic key created by tlie domain authority; 

29. The method of claim 20, further comprising: 

in response to a request of the user of the communication device, the communication device 
requesting digital content that is not available in the domain; and 

after authenticity of the domain has been verified, the communication device receiving an 
encrypted form of the requested digi lal content that is bound to the cryptographic key of the domain 
to which the communication device is registered. 
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30, The method of claini 29, wherein the encrypted form of the requested digital content 
is cx.>ntained in a content package having usage rules enforced by the communication device. 

31. The method of claim 2% wherein the content package comprises a binaiy 
representation rights table that contains the nsagc rules. 

32* The method of claim 3 1 > wherein the binary representation riglits table comprises a 
plurality of sections having predefined tokens. 

33, The method of claim 29, further comprising the communication device storing the 
encrypted digital content in an open-access storage clement. 

34. The method of claim 29, further comprising: 

the communication device receiving a request from a second communication device of the 
one or more communication devices of the domain requesting the digital content; 

the communication device verifying the authenticity of tlie second communication device; 

and 

if the authenticity of the second commiinication device is verified, the communication device 
transferring the requested digital ccmtent from a storage element of the communication device to the 
second conmiunication device, 

35- The method of claim 20, further comprising: 
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the communication device receiving digital legacy content from a source external to the 
domain and storing it in a storage element of the communication device; and 

in response to a request from a second communication device of the domain, the 
communication device transmitting the digital legacy content from the storage element to the second 
communication device. 

36. A method for registering devices in a domain having one or more communication 
devices that share a cryptographic key, which is associated with the domain and is used to decrypt 
select digital content^ in a domain-based digital rights management environment, comprising: 

a domain authority receiving a request to add a communication device to the domain; 

the domain authority determining whether the comnmnication device is legitimate by 
verifying that the conuuunication device has access to one or more valid cryptographic elements; 

if the communication device is determined to be valid, the domain authority transmitting over 
a communications channel to the communication device a cryptographic key of the domain operable 
to link the conmiunication device to the domain. 

37. The method of claim 36, wherein prior to the domain authority transmitting the 
cryptographic key to the communication device further comprising: 

Ihe domain authority determirung that the one or more communication devices of the domain 
do not exceed a predetermined upper limit. 

38. The method of claim 36, further comprising prior to receiving a request to add the 
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coinmunicution device to the domain, the domain authority receiving a request to create the domain 
having a domain name and a domain password; 

the domain authority initiating the communications channel with the communication device; 

the domain authority determining a unique identification of the communication device; 

the domain authority establishing the domain using the unique identification of the 
communication device, the domain name, and the domain password; 

the domain authority creating the cryptographic key of the domain; and 

the domain authority providing the cryptographic key for download by the communication 

device. 

39. The method of claim 36, further comprising: 

in response to a communication device of the domain requesting digital content, the domain 
authority verifying authenticity of the domain, 

40. The method of claim 36, wherein removing the communication device from the 
domain comprises the domain authority: 

receiving the request to remove the communication device fi'om tlic domain; 
authenticating the communication device; and 

upon authenticating the communication device the domain authority transmitting via a 
secure communications channel to the communication device a command to remove the 
cryptographic key of the domain from the ct)mmunication device. 
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41 . The method of claim 36, further comprising the domain authority: 
maintaining a log of requests by the communication device to register to or be deleted from 

one or more domains; 

monitoring the log to identify potentially fraudulejit activity by the communication device; 

and 

generating a warning message in response to identifying potentially fraudulent acti vity by the 
communication device. 

42. The method of claim 41, further apprising revoking a public key of the 
communication device if the communication device is determined to be engaged in fraudulent 
activity. 

43. A domain-based digital rights management system, comprising: 

a communication device linked via a first communications link to a domain-based digital 
rights management environment, comprising: 
a processing element; 

a receiver, coupled to and controlled by the processing element, opemblc to receive 
incoming messages to the communication device; 

a transmitter^ coupled to and umtrolled by the processing element, operable to 
transmit output messages of the communication device; and 

a digital rights management module coupled to the processing element that controls 
operation of the communication device within the domain-based digital rights management 
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system; 

a domain authority coupled to the communication device via a second commiinications link; 

wherein the digital rights management module of the communication device in combination 
with the domain authority arc operable to selectively add the communication device to a domain 
having one or more communication devices that share a cryptographic key, which is associated with 
the domain, and thus permit the eommuniearion device to selectively receive and decrypt digitfil 
content based upon membership in tlie domain using tlie shared cryptographic key. 

44. A method of limiting access to digital content in a domain-based digital rights 
management environment, comprising: 

a first communication device^ of a domain having one or more communication devices that 
share a cryptographic key of the domain, requesting digital content; 

in response to the request from the first communication device, verifying authenticity of the 
domain; and 

upon verifying authenticity of tlie domain, making the requested digital content accessible to 
the first communication device by binding an encrypted form of tlie requested digital content to the 
cryptographic key of the domain to which the first communication device is registered. 

45. The method of claim 44, wherein the encrypted Korm of the requested digital content 
is contained in a content package having usage rules enforced by the first communication device. 
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46. The method of claim 45j wherein the content package comprises a binaty 
representation rights table that contains the usage rules. 

47. Tht? method of claim 46, wherein tlie binary representation rights table comprises a 
plurality of sections having predefined tokens. 

48. The method of claim 44, wherein prior to the first communication device requesting 
digital content establishing the domain, said establishing further comprising: 

in response to a user request, the first communication device communicating to a domain 
authority a request to register the first communication device into the domain; 

the domain authority determining whether the first communication device is legitimate by 
verifying that the first communication device has access to one or more valid cryptographic 
elements; and 

the first c<.>mmunicati(m device receiving over a communications link a cryptographic key of 
the domain from the domain authority that links tlie first communication device to the domain, 

49. UTie metliod of claim 44, fiirther comprising: 

a second eommimication device of the one or more communication devices of the domain 
requesting the digital content; and 

transferring the requested digital content from a storage element to the second 
communication device. 
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50. The method of claini 44, further comprising: 

a second communication device of the one or more communication devices of the domain 
receiving digital legacy content from a source external to the domain and storing it in a storage 
element of the second communication device; and 

In response to a request from a third communication device of the domain^ the second 
communication device transmitting the digital legacy content from the storage element to the tliird 
communication device. 

51 - The method of claim 44, further comprising renioving a second communication 
device from the domain in response to a request from a user of the domain. 

52. The method of claim 5 1 , wherein removing the second communication dcvi ce from 
the domain comprises: 

in response to the request of the ui>er of the doniarn to remove the second communication 
device, the second communication device trcmsmitting a request to the domain authority to remove 
the second communication device from the domain; 

in response to the request that the second communication device he removed from the 
domain, the domain authority transmitting a command via the secure communications channel to 
remove the cryptographic key of tlie domain from tlie second communication device; and 

upon receiving the command from the domain authority, the second communication device 
removing the cryptographic key of the domain resident on the second communication device. 
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IX. EVIDENCE APPENDIX 

None 
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X. RELATED PROCEEDINCS APPENDIX 
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